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- The MAILING DATE of this communication appears on the cover sheet with the correspondence address -- 
Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1.136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 

- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)S Responsive to communication(s) filed on 12 November 2003 . 
2a)S This action is FINAL. 2b)D This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) ^ Claim(s) 1-14 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) G3 Claim(s) 1-14 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)Q accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1 .85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 
Priority under 35 U.S.C. §§119 and 1 20 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)C3 All b)D Some*c)D None of: 

Certified copies of the priority documents have been received. 

Certified copies of the priority documents have been received in Application No. . 



1. D 

2. D 

3-D 



Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

13) D Acknowledgment is made of a claim for domestic priority under 35 U.S.C. § 119(e) (to a provisional application) 

since a specific reference was included in the first sentence of the specification or in an Application Data Sheet. 
37 CFR 1.78. 

a) □ The translation of the foreign language provisional application has been received. 

14) D Acknowledgment is made of a claim for domestic priority under 35 U.S.C. §§ 120 and/or 121 since a specific 

reference was included in the first sentence of the specification or in an Application Data Sheet. 37 XR3178. 
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DETAILED ACTION 
Remarks 

1. In response to communications filed on 12-November-2003, claims 1-2, 4-5, and 7-10 are 
amended, and new claim 14 is added per applicant's request. Therefore, claims 1-14 are 
presently pending in the application. - 

Claim Rejections - 35 USC §103 

2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all obviousness 
rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that said subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 

3. Claims 1-14 are rejected under 35 U.S.C. 102(b) as being unpatentable over Reed et al (U.S. 
Patent No. 5,862,325) in view of Palm (U.S. Publication No. 2001/0042107 Al.) 

As to claim 1, Reed et al teaches an automated (see Abstract) authentication handling 
system (see column 26, lines 12-15) for use by clients (see column 26, lines 15-16) on a 
network (see Abstract, and see column 27, lines 62-64) comprising: 

an authentication server (see column 97, line 60 through column 98, line 1) adapted to 
establish a two-way trusted communication link (see column 76, lines 34-44, and see column 
81, lines 59-67) for access by an authenticated user to an application server associated with a 
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client identifier (see column 97, line 63 through column 98, line 1; column 100, lines 52-57; 
and see column 107, lines 44-51.) 

Reed et al does not teach a list of application servers. 

Palm teaches a communications system (see Abstract), in which he teaches t a list of 
application servers (see column 6, claim 7.) 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Reed et al to include a list of application 
servers. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Reed et al by the teaching of Palm , because including a 
list of application servers, would provide the user the opportunity of selecting a particular 
server from a plurality of servers, and would enable the system to route the desirable objects 
to the designated server, selected from a list of available servers. 

As to claim 2, Reed et al as modified teaches wherein the authentication server (see Reed 
et al . column 97, line 60 through column 98, line 1) includes: 

an identification engine configured to maintain collections of session assignments for 
accessing the application servers, each of the session assignment collections being associated 
with the client identifier (see Reed et al column 26, lines 36-46, where "identification 
engine" is read on "system ID assignment function", "maintain collection of session 
assignments" is read on "control the access".) 
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As to claim 3, Reed et al as modified teaches wherein the identification engine (see Reed 
et al , column 26, lines 36-46, where "identification engine" is read on "system ID assignment 
function") is adapted to receive client identifiers from the clients to establish authenticated 
users and responsive thereto to provide a user interface to access the application servers 
according to the associated session assignments (see Reed et al column 26, lines 33-66.) 

As to claim 4, Reed et al as modified teaches wherein the authentication server (see Reed 
et al column 97, line 60 through column 98, line 1) includes: 

a communication initiator engine (see Reed et al column 109, lines 19-28) configured to 
establish the trusted communication link between the authenticated users and an application 
server (see Reed et al column 97, line 63 through column 98, line 1; column 100, lines 52- 
57; and see column 107, lines 44-5 1) on the list (see Palm , column 6, claim 7.) 

As to claim 5, Reed et al as modified teaches wherein the authentication server (see Reed 
et al , column 97, line 60 through column 98, line 1*) includes: 

a communication initiator engine (see Reed et al column 109, lines 19-28) configured to 
establish the trusted communication link (see Reed et al . column 100, lines 52-57, and see 
column 107, lines 44-51) defined to one of the session assignments between the authenticated 
users and the application server (see Reed et al column 1 10, lines 35-44.) 



As to claim 6, Reed et al as modified teaches wherein the session assignments include 
data fields (see Reed et al column 67, line 64 through column 68, line 3) selected from the 
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group consisting of session timeout and application access level (see Reed et al . column 70, 
line 63 through column 70, line 10.) 

As to claim 7, Reed et al as modified teaches wherein the client identifier includes a user 
id and password (see Reed et al , column 72, lines 22-42.) 

As to claim 8, Reed et al as modified teaches wherein the authentication includes a 
processor under the control of software (see Reed et al , column 13, lines 7-12) to: 

receive an authentication signal from the client (see Reed et al column 28, lines 25-37); 

provide an application access interface to the client in response to the authentication 
signal (see Reed et al figures 22-24); and 

establish the trusted communication link between the client and an application server 
selected from the application access interface (see Reed et al , column 100, lines 52-57, and 
see column 107, lines 44-51.) 

As to claim 9, Reed et al teaches a method for automatically authenticating a client (see 
column 26, lines 12-15) for a plurality of application servers (see column 9, lines 50-65, and 
see column 25, lines 15-18) comprising the steps of: 

providing an authentication server (see column 97, line 60 through column 98, line 1); 

identifying clients for access to the application servers by the authentication server (see 
column 78, lines 25-32); and 
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establishing a two-way trusted communication (see column 76, lines 34-44, and see 
column 81, lines 59-67) link between a client and an application server associated with a 
client identifier (see column 97, line 63 through column 98, line 1; column 100, lines 52-57; 
and see column 107, lines 44-51.) 

Reed et al does not teach server selected from a list of application servers. 

Palm teaches a communications system (see Abstract), in which he teaches a list of 
application servers (see column 6, claim 7.) 

Therefore, it would have been obvious to a person having ordinary skill in the art at the 
time the invention was made to have modified Reed et al to include server selected from a 
list of application servers. 

It would have been obvious to a person having ordinary skill in the art at the time the 
invention was made to have modified Reed et al by the teaching of Palm , because including a 
server selected from a list of application servers, would provide the user the opportunity of 
selecting a particular server from a plurality of servers, and would enable the system to route 
the desirable objects to the designated server, selected from a list of available servers. 

As to claim 10, Reed et al as modified teaches wherein the identifying step includes: 
providing session parameters for each of the identified clients for at least one of the 
application servers (see Reed et al column 34, lines 18-47.) 
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As to claim 1 1, Reed et al as modified teaches wherein the identifying step includes: 
providing a user interface to the identified clients for accessing the application servers 
(see Reed et al column 68, lines 9-13.) 

As to claim 12, Reed et al as modified teaches wherein the establishing step includes: 
using the session parameters (see Reed et al column 34, lines 18-47) to establish the 

trusted communication link (see Reed et al column 100, lines 52-57, and see column 107, 

lines 44-51.) 

As to claim 13, Reed et al as modified teaches wherein the user interface includes a 
listing of application servers (see Reed et al column 102, line 66 through column 103, line 7) 
and the establishing step is initiated following a selection of an application server by a user 
from the user interface (see Reed et al column 26, lines 47-64.) 

As to claim 14, Reed et al as modified teaches the method further comprising a plurality 
of application servers connected to the network (see Reed et al column 152, lines 24-27), 
each requiring authentication for access (see Reed et al column 153, lines 20-23.) 

Response to Arguments 
4. Applicant's arguments filed on 12-November-2003 with respect to the rejected claims in 
view of the cited references have been fully considered but they are moot in view of the new 
grounds of rejection. 
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Conclusion 



5. Applicant's amendment necessitated the new ground(s) of rejection presented in this Office 
action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP § 706.07(a). 
Applicant is reminded of the extension of time policy as set forth in 37 CFR 1 .136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until 
after the end of the THREE-MONTH shortened statutory period, then the shortened statutory 
period will expire on the date the advisory action is mailed, and any extension fee pursuant to 
37 CFR 1 .13 6(a) will be calculated from the mailing date of the advisory action. In no event, 
however, will the statutory period for reply expire later than SIX MONTHS from the date of 
this final action. 

6. Any inquiries concerning this communication or earlier communications from the examiner 
should be directed to Tony Mahmoudi whose telephone number is (703) 305-4887. The 
examiner can normally be reached on Mondays-Fridays from 08:00 am to 04:30 pm. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Dov Popovici, can be reached at (703) 305-3830. 



January 7, 2004 



DOVPOPQVlEl \) 
SUPERVISORY PATENT EXAMINER 
.OOLOGY CENTER 2100 



